Mat Bankes ("we," "us," or "our") is committed to protecting the privacy and security of your personal information. We respect your rights to privacy under the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Furthermore, for our international clients and visitors, we align our practices with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website [matbankes.com.au], purchase our digital products, book speaking engagements, or engage in our coaching services.
2. Information We Collect
We collect distinct categories of data depending on your interaction with our business:
2.1 Information You Provide Directly
- Identity Data: Name, job title, company name, and username.
- Contact Data: Email address, telephone number, billing address, and postal address.
- Transaction Data: Details of products (courses, books) and services (workshops, coaching) you have purchased. Note: We do not store full credit card numbers; payment data is processed securely by Stripe.
- Profile Data: Your username, password, purchases, interests, preferences, feedback, and survey responses.
- Event & Coaching Data: Information provided during pre-event questionnaires, coaching intake forms, or workshop registrations. This may include professional goals, challenges, and, where strictly necessary and consensual, sensitive information regarding personal wellbeing.
2.2 Information Collected Automatically
- Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting, operating system, and platform.
- Usage Data: Information about how you use our website, such as video watch duration, course progress, and clickstream data.
- Tracking Data: We use cookies, pixels (including the Meta Pixel), and similar technologies to track activity on our site and hold certain information.
3. How We Use Your Information
We use your data for the following legitimate business purposes:
a. Service Delivery: To facilitate keynote bookings, deliver digital course content, and conduct coaching sessions.
b. Communication: To send you administrative information, such as order confirmations, event details, and policy updates.
c. Marketing: To send you newsletters, promotional offers, and information about new workshops (only with your express or inferred consent under the Spam Act 2003).
d. Analytics & Improvement: To use data analytics (via Google Analytics 4) to improve our website, products, marketing, and customer relationships.
e. Advertising: To deliver relevant website content and advertisements to you and measure the effectiveness of the advertising we serve (via Meta Ads).
f. Security: To prevent fraud and monitor the security of our website.
4. Disclosure of Your Information
We may share your information with the following third parties:
- Service Providers: We utilize HighLevel (GoHighLevel) as our primary CRM and hosting provider. HighLevel processes data on servers located in the United States. We also use third-party tools for email hosting, scheduling, and analytics.
- Payment Processors: Financial transactions are handled by Stripe. We share transaction data with Stripe only to the extent necessary for the purposes of processing your payments, refunding such payments, and dealing with complaints and queries relating to such payments and refunds.
- Professional Advisors: Lawyers, accountants, and insurers where necessary for legal compliance or business management.
- Legal Requirements: We may disclose your information where required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
International Transfers (APP 8):
Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. Specifically, our servers and third-party service providers (like HighLevel and Google) operate in the United States. By submitting your personal information, you agree to this transfer, storing, or processing. We take all reasonable steps to ensure that your data is treated securely and in accordance with this policy, relying on Standard Contractual Clauses (SCCs) where applicable for GDPR compliance.
5. Cookies and Tracking Technologies
Our website uses cookies to distinguish you from other users.
- Essential Cookies: Required for the operation of the website (e.g., shopping cart, secure login).
- Analytical Cookies (Google Analytics 4): Allow us to recognize and count the number of visitors and see how visitors move around the site. GA4 anonymizes IP addresses to protect user privacy.
- Marketing Cookies (Meta Pixel): These cookies record your visit to our website, the pages you have visited, and the links you have followed. We use this information to make our website and the advertising displayed on it more relevant to your interests.
Opt-Out Mechanisms:
- You can set your browser to refuse all or some browser cookies.
- You can manage Facebook ad preferences in your Facebook settings.
6. Data Security and Retention
We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way. We retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements (generally 7 years for tax records).
7. Your Rights
7.1 Under Australian Law
You have the right to request access to the personal information we hold about you and to ask for corrections if it is inaccurate. To exercise this right, please contact us at the email provided below.
7.2 Under GDPR (European Union)
If you are a resident of the EEA, you have additional rights:
- Right to Erasure: Request the deletion of your data ("Right to be Forgotten").
- Right to Portability: Request transfer of your data to another controller.
- Right to Restrict Processing: Ask us to suspend the processing of your personal data.
- Right to Withdraw Consent: Withdraw consent at any time where we rely on consent to process your data.
7.3 Under CCPA (California)
Residents of California have the right to request:
- The categories of personal information we collected about you.
- The categories of sources for the personal information we collected about you.
- Our business or commercial purpose for collecting that personal information.
- The categories of third parties with whom we share that personal information.
- Do Not Sell My Personal Information: We do not sell personal information for monetary value. However, we may share personal information with third parties for marketing purposes. You have the right to opt-out of such sharing.
8. Children's Privacy
Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we take steps to remove that information from our servers.
9. Complaints and Contact
If you have any questions about this Privacy Policy or wish to exercise your rights, please contact our Privacy Officer:
Post: 71 Wavecrest Drive, Castaways Beach, QLD, 4567, Australia
If you are not satisfied with our response to your complaint, you have the right to contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.
